2 matches found
CVE-2022-29271
In Nagios XI through 5.8.5, a read-only Nagios user due to an incorrect permission check is able to schedule downtime for any host/services. This allows an attacker to permanently disable all monitoring checks...
CVE-2022-29271
CVE-2022-29271 affects Nagios XI 5.8.5 and earlier. Reported root cause: a read-only Nagios user can schedule downtime for any host/service due to an incorrect permission check, enabling an attacker to permanently disable all monitoring checks. Publicly documented impact is a permission flaw rath...